From 4c2be74083287516b72ab4f3ccaaf317ea7a2eb0 Mon Sep 17 00:00:00 2001 From: Nick Walker Date: Wed, 11 Nov 2015 13:41:34 -0800 Subject: Add support for code manager which will replace zack r10k Add pltraing-rbac module Added a new profile for code_manager that: - creates a service users for code manager - creates a token for that service user - creates a hook on a git server using the token Turns out that the file function in puppet cannot read files in /root. The pe-puppet user needs read permissions on the file and traversal on the directory which giving to /root would probably be a bad idea. So, I just put the file containing the token in /etc/puppetlabs/puppetserver since I'm not sure where would be better. --- site/profile/manifests/puppetmaster.pp | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) (limited to 'site/profile/manifests/puppetmaster.pp') diff --git a/site/profile/manifests/puppetmaster.pp b/site/profile/manifests/puppetmaster.pp index 0954807..e63d819 100644 --- a/site/profile/manifests/puppetmaster.pp +++ b/site/profile/manifests/puppetmaster.pp @@ -25,7 +25,8 @@ class profile::puppetmaster ( #END - Generate an SSH key for r10k to connect to git #BEGIN - Add deploy key and webook to git management system - $git_management_system = hiera('git_management_system', '') + $git_management_system = hiera('git_management_system', undef) + $gms_api_token = hiera('gms_api_token', undef) if $git_management_system in ['gitlab', 'github'] { -- cgit v1.2.3